hhba / mapa76

Plataforma de investigación periodística
http://analice.me/
31 stars 8 forks source link

Bump rack-protection from 1.5.0 to 2.0.7 in /chaos #244

Open dependabot[bot] opened 5 years ago

dependabot[bot] commented 5 years ago

Bumps rack-protection from 1.5.0 to 2.0.7.

Changelog *Sourced from [rack-protection's changelog](https://github.com/sinatra/sinatra/blob/master/CHANGELOG.md).* > ## 2.0.7 / 2019-08-22 > > * Fix a regression [#1560](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1560) by Kunpei Sakai > > ## 2.0.6 / 2019-08-21 > > * Fix an issue setting environment from command line option [#1547](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1547), [#1554](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1554) by Jordan Owens, Kunpei Sakai > > * Support pandoc as a new markdown renderer [#1533](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1533) by Vasiliy > > * Remove outdated code for tilt 1.x [#1532](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1532) by Vasiliy > > * Remove an extra logic for `force_encoding` [#1527](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1527) by Jordan Owens > > * Avoid multiple errors even if `params` contains special values [#1526](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1527) by Kunpei Sakai > > * Support `bundler/inline` with `require 'sinatra'` integration [#1520](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1520) by Kunpei Sakai > > * Avoid `TypeError` when params contain a key without a value on Ruby < 2.4 [#1516](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1516) by Samuel Giddins > > * Improve development support and documentation and source code by Olle Jonsson, Basavanagowda Kanur, Yuki MINAMIYA > > ## 2.0.5 / 2018-12-22 > > * Avoid FrozenError when params contains frozen value [#1506](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1506) by Kunpei Sakai > > * Add support for Erubi [#1494](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1494) by [@​tkmru](https://github.com/tkmru) > > * `IndifferentHash` monkeypatch warning improvements [#1477](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1477) by Mike Pastore > > * Improve development support and documentation and source code by Anusree Prakash, Jordan Owens, [@​ceclinux](https://github.com/ceclinux) and [@​krororo](https://github.com/krororo). > > ### sinatra-contrib > > * Add `flush` option to `content_for` [#1225](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1225) by Shota Iguchi > > * Drop activesupport dependency from sinatra-contrib [#1448](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1448) > > * Update `yield_content` to append default to ERB template buffer [#1500](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1500) by Jordan Owens > > ### rack-protection > > * Don't track the Accept-Language header by default [#1504](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1504) by Artem Chistyakov > > ## 2.0.4 / 2018-09-15 > > * Don't blow up when passing frozen string to `send_file` disposition [#1137](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1137) by Andrew Selder > > * Fix ubygems LoadError [#1436](https://github-redirect.dependabot.com/sinatra/sinatra/pull/1436) by Pavel Rosický > > ... (truncated)
Commits - See full diff in [compare view](https://github.com/sinatra/sinatra/commits/v2.0.7)


Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot ignore this [patch|minor|major] version` will close this PR and stop Dependabot creating any more for this minor/major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself) - `@dependabot use these labels` will set the current labels as the default for future PRs for this repo and language - `@dependabot use these reviewers` will set the current reviewers as the default for future PRs for this repo and language - `@dependabot use these assignees` will set the current assignees as the default for future PRs for this repo and language - `@dependabot use this milestone` will set the current milestone as the default for future PRs for this repo and language You can disable automated security fix PRs for this repo from the [Security Alerts page](https://github.com/hhba/mapa76/network/alerts).